$ rpki-client -vvf rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft File: quV1mn6YqnRYWY3jwZqheX8A9fU.mft (raw, json) Hash identifier: rFxaKylejPtDfcOUtrMj9n9YtcLhMoT0/ceBd35DSd4= Subject key identifier: 28:DD:BC:2D:99:B7:1E:64:1B:09:19:72:19:1C:34:ED:71:7A:9F:4C Authority key identifier: AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 Certificate issuer: /CN=A9142489/serialNumber=AAE5759A7E98AA7458598DE3C19AA1797F00F5F5 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft Manifest number: 4D Signing time: Sat 29 Mar 2025 06:37:53 +0000 Manifest this update: Sat 29 Mar 2025 06:37:53 +0000 Manifest next update: Sat 05 Apr 2025 06:37:53 +0000 Files and hashes: 1: quV1mn6YqnRYWY3jwZqheX8A9fU.crl (hash: ELIPKfIoVRg0AXT+v30vuXz7UVA12THOcMXGCviiyoI=) 2: 4D7DE09E9BFB11EF8E975D70C4F9AE02.roa (hash: XzXF/8xfpuOMbcKhBzvfBK+CZWCno4sqp+r1zL1L1bM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142489 Validity Not Before: Mar 29 06:37:53 2025 GMT Not After : Apr 5 06:37:53 2025 GMT Subject: CN=67e79541-b80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:81:ae:88:10:ec:6c:0e:94:da:cf:88:b2:bb: 0d:5a:df:fb:e3:d9:43:f0:cf:4e:6b:41:4d:32:b2: fd:35:25:d4:be:59:93:c7:09:eb:63:e3:c4:ce:70: 11:1e:68:b9:17:bd:cf:c6:a5:12:f8:98:55:97:0f: c9:e9:37:10:cc:d1:ab:65:cd:e2:b1:6c:3d:54:26: c6:1d:c2:42:d4:1e:93:2c:5f:45:2a:cc:b3:cd:64: 16:d7:18:95:4d:86:41:22:ba:4f:27:63:0e:f5:ec: d4:bb:16:3b:2a:bc:15:cf:db:03:db:93:28:83:19: d2:e5:a2:21:ff:35:05:16:81:4d:e5:cc:22:8f:e3: 09:01:8d:f4:22:0d:53:10:58:be:15:6e:0e:7e:21: 1c:68:8f:8f:c2:59:51:76:92:59:53:14:ea:75:41: 5f:aa:1e:38:b2:0a:bb:7b:05:1e:ee:09:c6:da:0c: 08:44:1b:fe:7a:6c:f6:f1:9e:5b:72:df:d0:a7:ad: fa:ae:fd:01:ba:a5:b2:0a:6c:8c:76:33:dd:da:75: 54:82:b4:ca:33:2f:2e:4f:b2:17:70:7a:71:36:a0: 1c:66:90:16:1c:a4:12:67:13:55:4b:4e:7b:7a:89: 69:f5:62:cf:3f:8c:d7:71:d5:d9:19:4c:aa:aa:d1: d2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DD:BC:2D:99:B7:1E:64:1B:09:19:72:19:1C:34:ED:71:7A:9F:4C X509v3 Authority Key Identifier: keyid:AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:70:9a:32:33:50:c2:9c:a6:15:e8:e6:f7:5b:2f:83:78:fa: b2:fb:d8:17:ea:bd:e1:08:ba:29:e1:da:1d:cb:f3:57:1d:78: 05:8a:77:e3:97:fb:bb:07:81:6e:4e:e8:7c:f2:95:22:c5:33: ab:94:74:f6:35:64:fc:19:1c:3d:63:78:0f:80:d9:33:f5:14: 08:b7:fe:c0:85:1b:d6:a3:ff:f6:6a:cc:c5:30:36:52:6e:87: d7:1d:9b:71:9b:63:28:32:e3:4a:d4:d5:e2:70:bf:35:5b:29: a3:90:20:88:de:c7:fa:02:0a:9c:2c:b6:cd:42:82:cb:2e:21: 57:2c:fb:6f:5e:6e:c3:0e:6a:0c:14:28:e9:fc:b6:3f:27:91: 0d:d1:64:e3:c6:f2:d5:3a:64:e9:c1:94:54:54:ec:83:a0:19: 56:b6:bd:4f:8a:19:3f:2c:ac:36:3e:04:93:d0:6b:df:af:dc: cf:c6:6d:70:98:74:19:fc:68:c9:d4:bb:8b:63:a6:63:ae:2c: 28:69:59:4d:53:41:b0:f5:b2:ef:56:8a:f9:d4:25:ce:3a:ad: bb:f2:5d:61:7e:72:72:79:8f:18:3d:73:a6:f3:4d:8a:d3:26: 60:e3:17:90:ed:d2:a7:8a:96:d7:de:bf:c6:04:52:dc:79:e9: 99:90:46:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjQ4OTExMC8GA1UEBRMoQUFFNTc1OUE3RTk4QUE3NDU4NTk4REUzQzE5QUExNzk3 RjAwRjVGNTAeFw0yNTAzMjkwNjM3NTNaFw0yNTA0MDUwNjM3NTNaMBgxFjAUBgNV BAMTDTY3ZTc5NTQxLWI4MGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDga6IEOxsDpTaz4iyuw1a3/vj2UPwz05rQU0ysv01JdS+WZPHCetj48TOcBEe aLkXvc/GpRL4mFWXD8npNxDM0atlzeKxbD1UJsYdwkLUHpMsX0UqzLPNZBbXGJVN hkEiuk8nYw717NS7FjsqvBXP2wPbkyiDGdLloiH/NQUWgU3lzCKP4wkBjfQiDVMQ WL4Vbg5+IRxoj4/CWVF2kllTFOp1QV+qHjiyCrt7BR7uCcbaDAhEG/56bPbxnlty 39Cnrfqu/QG6pbIKbIx2M93adVSCtMozLy5PshdwenE2oBxmkBYcpBJnE1VLTnt6 iWn1Ys8/jNdx1dkZTKqq0dL7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKN28LZm3 HmQbCRlyGRw07XF6n0wwHwYDVR0jBBgwFoAUquV1mn6YqnRYWY3jwZqheX8A9fUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNDg5LzNBM0YyODM2OUJG QTExRUZCRUI5ODQ2RUM0RjlBRTAyL3F1VjFtbjZZcW5SWVdZM2p3WnFoZVg4QTlm VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXVWMW1uNllxblJZV1kzandacWhlWDhBOWZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy NDg5LzNBM0YyODM2OUJGQTExRUZCRUI5ODQ2RUM0RjlBRTAyL3F1VjFtbjZZcW5S WVdZM2p3WnFoZVg4QTlmVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIFwmjIzUMKcphXo5vdbL4N4+rL72BfqveEIuinh2h3L81cdeAWKd+OX +7sHgW5O6HzylSLFM6uUdPY1ZPwZHD1jeA+A2TP1FAi3/sCFG9aj//ZqzMUwNlJu h9cdm3GbYygy40rU1eJwvzVbKaOQIIjex/oCCpwsts1CgssuIVcs+29ebsMOagwU KOn8tj8nkQ3RZOPG8tU6ZOnBlFRU7IOgGVa2vU+KGT8srDY+BJPQa9+v3M/GbXCY dBn8aMnUu4tjpmOuLChpWU1TQbD1su9WivnUJc46rbvyXWF+cnJ5jxg9c6bzTYrT JmDjF5Dt0qeKltfev8YEUtx56ZmQRtc= -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:58 2025 by rpki-client